Implement security through a pipeline using Azure DevOps
- Offered byMicrosoft
Implement security through a pipeline using Azure DevOps at Microsoft Overview
Duration | 7 hours |
Total fee | Free |
Mode of learning | Online |
Schedule type | Self paced |
Difficulty level | Intermediate |
Official Website | Explore Free Course |
Credential | Certificate |
Implement security through a pipeline using Azure DevOps at Microsoft Course details
- Configure a project and repository structure to support secure pipelines
- Manage identity for projects, pipelines, and agents
- Configure secure access to pipeline resources
- Configure and validate permissions
- Extend a pipeline to use multiple templates
- Configure secure access to Azure Repos from pipelines
- Configure pipelines to securely use variables and parameters
- This learning path helps you prepare for the Implement security through a pipeline assessment using Azure DevOps. Learn how to configure and secure Azure Pipelines. You'll also get opportunities to practice hands-on skills. These skills include configuring secure access to pipeline resources, configuring, and validating permissions, configuring a project and repository structure, extending a pipeline, configuring pipelines to use variables and parameters securely, and managing identity for projects, pipelines, and agents.
- Note
- You need an Azure subscription to complete these exercises. If you don't have an Azure subscription, create a free account and add a subscription before you begin. If you are a student, you can take advantage of the Azure for students offer.
Implement security through a pipeline using Azure DevOps at Microsoft Curriculum
Configure a project and repository structure to support secure pipelines
Introduction
Organize project and repository structure
Configure secure projects and repositories
Lab - Configure a project and repository structure to support secure pipelines
Knowledge check
Summary
Manage identity for projects, pipelines, and agents
Introduction
Configure a Microsoft-hosted pool
Configure agents for projects
Configure agent identities
Configure the scope of a service connection
Understand and convert to a Managed Identity
Lab - Manage identity for projects and pipelines
Knowledge check
Summary
Configure secure access to pipeline resources
Introduction
Configure agent pools
Use secret variables and variable groups
Understand secure files
Configure service connections
Manage environments
Secure repositories
Lab - Configure agents and agent pools for secure pipelines
Knowledge check
Summary
Configure and validate permissions
Introduction
Configure and validate user permissions
Configure and validate pipeline permissions
Configure and validate approval and branch checks
Manage and audit permissions
Lab - Configure and validate permissions
Knowledge check
Summary
Extend a pipeline to use multiple templates
Introduction
Create a nested template
Rewrite the main deployment pipeline
Configure the pipeline and the application to use tokenization
Remove plain text secrets
Restrict agent logging
Identify and conditionally remove script tasks
Lab - Extend a pipeline to use multiple templates
Knowledge check
Summary
Configure secure access to Azure Repos from pipelines
Introduction
Configure pipeline access to packages
Configure pipeline access to credential secrets
Configure pipeline access to secrets for services
Use Azure Key Vault to secure secrets
Explore and secure log files
Lab - Integrate Azure Key Vault with Azure Pipelines
Knowledge check
Summary
Configure pipelines to securely use variables and parameters
Introduction
Ensure parameter and variable types
Identify and restrict insecure use of parameters and variables
Move parameters into a YAML file
Limit queue time variables
Validate mandatory variables
Lab - Configure pipelines to securely use variables and parameters
Knowledge check
Summary